Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Zeroaccess


  • Please log in to reply
16 replies to this topic

#1 PhinDorsal

PhinDorsal

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 08 July 2012 - 12:00 PM

I've got a 64 bit Windows 7 system that has picked up zeroaccess. I'm running McAfee and I'm getting a pop up about every couple of minutes listing Artemis!084D88AF1946, Generic.dx!b2qj, as well as zeroaccess.

I've looked all over for a way to remove zeroacess, which seems to be the cause of the problem, but so far I've not found anything that doesn't want me to spend a bunch of money from a website that appears to be written in poor English. That might be the perfect fix, but at this point I'm too worried to trust it. The McAfee Total Protection (which apparently isn't total) that I have shows Desktop.ini, Desktop(64).ini, andother Desktop.ini, and Desktop(5).ini as being infected and unable to delete.

I tried a system restore to a previous date and that didn't seem to have any impact.

I know just enough about computers to be dangerous to myself so any help would be appreciated.

Edited by PhinDorsal, 08 July 2012 - 12:01 PM.


BC AdBot (Login to Remove)

 


#2 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 08 July 2012 - 03:30 PM

I tried system restore to a much earlier date in time and so far nothing has popped up about zeroaccess or anything else. Does this mean it is gone?

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,219 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:16 PM

Posted 08 July 2012 - 08:59 PM

Hello,I feel with this rootkit we want to be certain it's gone.

Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).


>>>


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.

>>>
Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 08 July 2012 - 10:50 PM

I just want to make sure, I need to do all the programs and not just the Mslwarebytes.

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,219 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:16 PM

Posted 09 July 2012 - 11:16 AM

Yes run them all,please.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 09 July 2012 - 07:59 PM

Running them now, and glad I did as they are back.

#7 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 09 July 2012 - 08:09 PM

Here is the Malware log. A reboot was needed. Going to the second one now.

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.09.14

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Richard :: RICHARD-PC [administrator]

Protection: Disabled

7/9/2012 8:52:27 PM
mbam-log-2012-07-09 (20-52-27).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 249591
Time elapsed: 6 minute(s), 28 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\Richard\Downloads\setup.exe (Trojan.FakeVLC) -> Quarantined and deleted successfully.

(end)

Edited by PhinDorsal, 09 July 2012 - 08:10 PM.


#8 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 09 July 2012 - 08:14 PM

This is from the TDSSKiller. No reboot was needed and nothing was detected.

21:10:54.0784 5380 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
21:10:55.0923 5380 ============================================================
21:10:55.0923 5380 Current date / time: 2012/07/09 21:10:55.0923
21:10:55.0923 5380 SystemInfo:
21:10:55.0923 5380
21:10:55.0923 5380 OS Version: 6.1.7601 ServicePack: 1.0
21:10:55.0923 5380 Product type: Workstation
21:10:55.0923 5380 ComputerName: RICHARD-PC
21:10:55.0923 5380 UserName: Richard
21:10:55.0923 5380 Windows directory: C:\Windows
21:10:55.0923 5380 System windows directory: C:\Windows
21:10:55.0923 5380 Running under WOW64
21:10:55.0923 5380 Processor architecture: Intel x64
21:10:55.0923 5380 Number of processors: 8
21:10:55.0923 5380 Page size: 0x1000
21:10:55.0923 5380 Boot type: Normal boot
21:10:55.0923 5380 ============================================================
21:10:56.0594 5380 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:10:56.0609 5380 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:10:56.0656 5380 Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:10:56.0687 5380 ============================================================
21:10:56.0687 5380 \Device\Harddisk0\DR0:
21:10:56.0703 5380 MBR partitions:
21:10:56.0703 5380 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1B58800, BlocksNum 0x32000
21:10:56.0703 5380 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B8BF86, BlocksNum 0xACEFB3AA
21:10:56.0703 5380 \Device\Harddisk1\DR1:
21:10:56.0703 5380 MBR partitions:
21:10:56.0703 5380 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x16DFB56
21:10:56.0703 5380 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x16DFB95, BlocksNum 0x38CA50AC
21:10:56.0703 5380 \Device\Harddisk2\DR2:
21:10:56.0703 5380 GPT partitions:
21:10:56.0703 5380 \Device\Harddisk2\DR2\Partition0: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {9D3848B0-F723-4B6C-AC52-42979B856D3E}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
21:10:56.0703 5380 \Device\Harddisk2\DR2\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {874CEF7A-EF79-477C-9DA4-B03F7802729F}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0xE8DC8000
21:10:56.0703 5380 MBR partitions:
21:10:56.0703 5380 ============================================================
21:10:56.0812 5380 C: <-> \Device\Harddisk0\DR0\Partition1
21:10:56.0828 5380 D: <-> \Device\Harddisk1\DR1\Partition1
21:10:56.0843 5380 E: <-> \Device\Harddisk2\DR2\Partition1
21:10:56.0843 5380 F: <-> \Device\Harddisk1\DR1\Partition0
21:10:56.0843 5380 ============================================================
21:10:56.0843 5380 Initialize success
21:10:56.0843 5380 ============================================================
21:11:14.0830 3948 ============================================================
21:11:14.0830 3948 Scan started
21:11:14.0830 3948 Mode: Manual; TDLFS;
21:11:14.0830 3948 ============================================================
21:11:15.0610 3948 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:11:15.0626 3948 1394ohci - ok
21:11:15.0688 3948 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:11:15.0688 3948 ACPI - ok
21:11:15.0735 3948 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:11:15.0782 3948 AcpiPmi - ok
21:11:16.0406 3948 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:11:16.0406 3948 AdobeARMservice - ok
21:11:17.0014 3948 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:11:17.0014 3948 AdobeFlashPlayerUpdateSvc - ok
21:11:17.0077 3948 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:11:17.0077 3948 adp94xx - ok
21:11:17.0123 3948 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:11:17.0139 3948 adpahci - ok
21:11:17.0155 3948 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:11:17.0155 3948 adpu320 - ok
21:11:17.0186 3948 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:11:17.0186 3948 AeLookupSvc - ok
21:11:17.0248 3948 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:11:17.0311 3948 AFD - ok
21:11:17.0373 3948 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:11:17.0373 3948 agp440 - ok
21:11:17.0404 3948 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:11:17.0404 3948 ALG - ok
21:11:17.0420 3948 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:11:17.0420 3948 aliide - ok
21:11:17.0435 3948 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:11:17.0435 3948 amdide - ok
21:11:17.0451 3948 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:11:17.0451 3948 AmdK8 - ok
21:11:17.0467 3948 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:11:17.0467 3948 AmdPPM - ok
21:11:17.0498 3948 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:11:17.0545 3948 amdsata - ok
21:11:17.0591 3948 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:11:17.0591 3948 amdsbs - ok
21:11:17.0607 3948 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:11:17.0654 3948 amdxata - ok
21:11:17.0716 3948 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:11:17.0763 3948 AppID - ok
21:11:17.0794 3948 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:11:17.0794 3948 AppIDSvc - ok
21:11:17.0841 3948 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:11:17.0841 3948 Appinfo - ok
21:11:17.0966 3948 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:11:17.0966 3948 Apple Mobile Device - ok
21:11:17.0981 3948 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:11:17.0981 3948 arc - ok
21:11:17.0997 3948 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:11:18.0013 3948 arcsas - ok
21:11:18.0091 3948 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:11:18.0106 3948 aspnet_state - ok
21:11:18.0122 3948 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:11:18.0137 3948 AsyncMac - ok
21:11:18.0184 3948 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:11:18.0184 3948 atapi - ok
21:11:18.0262 3948 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:11:18.0278 3948 AudioEndpointBuilder - ok
21:11:18.0278 3948 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:11:18.0278 3948 AudioSrv - ok
21:11:18.0356 3948 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:11:18.0403 3948 AxInstSV - ok
21:11:18.0481 3948 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:11:18.0512 3948 b06bdrv - ok
21:11:18.0543 3948 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:11:18.0559 3948 b57nd60a - ok
21:11:18.0637 3948 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:11:18.0652 3948 BDESVC - ok
21:11:18.0699 3948 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:11:18.0699 3948 Beep - ok
21:11:18.0808 3948 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:11:18.0808 3948 BFE - ok
21:11:19.0042 3948 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:11:19.0105 3948 BITS - ok
21:11:19.0151 3948 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:11:19.0151 3948 blbdrive - ok
21:11:19.0401 3948 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:11:19.0401 3948 Bonjour Service - ok
21:11:19.0479 3948 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:11:19.0510 3948 bowser - ok
21:11:19.0573 3948 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:11:19.0588 3948 BrFiltLo - ok
21:11:19.0588 3948 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:11:19.0604 3948 BrFiltUp - ok
21:11:19.0651 3948 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:11:19.0651 3948 Browser - ok
21:11:19.0697 3948 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:11:19.0697 3948 Brserid - ok
21:11:19.0744 3948 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:11:19.0744 3948 BrSerWdm - ok
21:11:19.0760 3948 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:11:19.0775 3948 BrUsbMdm - ok
21:11:19.0791 3948 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:11:19.0791 3948 BrUsbSer - ok
21:11:19.0791 3948 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:11:19.0807 3948 BTHMODEM - ok
21:11:19.0838 3948 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:11:19.0838 3948 bthserv - ok
21:11:19.0869 3948 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:11:19.0869 3948 cdfs - ok
21:11:19.0916 3948 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
21:11:19.0978 3948 cdrom - ok
21:11:20.0025 3948 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:11:20.0025 3948 CertPropSvc - ok
21:11:20.0072 3948 cfwids (274ce03459896006f7a5069266e0469e) C:\Windows\system32\drivers\cfwids.sys
21:11:20.0119 3948 cfwids - ok
21:11:20.0165 3948 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:11:20.0165 3948 circlass - ok
21:11:20.0228 3948 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:11:20.0243 3948 CLFS - ok
21:11:20.0306 3948 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:11:20.0306 3948 clr_optimization_v2.0.50727_32 - ok
21:11:20.0353 3948 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:11:20.0353 3948 clr_optimization_v2.0.50727_64 - ok
21:11:20.0446 3948 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:11:20.0446 3948 clr_optimization_v4.0.30319_32 - ok
21:11:20.0509 3948 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:11:20.0509 3948 clr_optimization_v4.0.30319_64 - ok
21:11:20.0540 3948 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:11:20.0540 3948 CmBatt - ok
21:11:20.0618 3948 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:11:20.0618 3948 cmdide - ok
21:11:20.0665 3948 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:11:20.0727 3948 CNG - ok
21:11:20.0743 3948 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:11:20.0758 3948 Compbatt - ok
21:11:20.0805 3948 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:11:20.0867 3948 CompositeBus - ok
21:11:20.0899 3948 COMSysApp - ok
21:11:20.0930 3948 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:11:20.0930 3948 crcdisk - ok
21:11:21.0023 3948 Creative ALchemy AL6 Licensing Service (c8bd651e13895b93ed9ec5b4f1df42bc) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
21:11:21.0023 3948 Creative ALchemy AL6 Licensing Service - ok
21:11:21.0055 3948 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
21:11:21.0055 3948 Creative Audio Engine Licensing Service - ok
21:11:21.0101 3948 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:11:21.0117 3948 CryptSvc - ok
21:11:21.0164 3948 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:11:21.0179 3948 DcomLaunch - ok
21:11:21.0211 3948 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:11:21.0226 3948 defragsvc - ok
21:11:21.0257 3948 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:11:21.0304 3948 DfsC - ok
21:11:21.0382 3948 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:11:21.0429 3948 Dhcp - ok
21:11:21.0476 3948 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:11:21.0476 3948 discache - ok
21:11:21.0507 3948 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:11:21.0507 3948 Disk - ok
21:11:21.0538 3948 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:11:21.0538 3948 Dnscache - ok
21:11:21.0585 3948 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:11:21.0616 3948 dot3svc - ok
21:11:21.0694 3948 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:11:21.0694 3948 DPS - ok
21:11:21.0741 3948 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:11:21.0741 3948 drmkaud - ok
21:11:21.0835 3948 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:11:21.0881 3948 DXGKrnl - ok
21:11:21.0991 3948 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:11:21.0991 3948 EapHost - ok
21:11:22.0178 3948 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:11:22.0225 3948 ebdrv - ok
21:11:22.0505 3948 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:11:22.0505 3948 EFS - ok
21:11:22.0615 3948 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:11:22.0615 3948 ehRecvr - ok
21:11:22.0661 3948 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:11:22.0661 3948 ehSched - ok
21:11:22.0739 3948 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:11:22.0755 3948 elxstor - ok
21:11:22.0802 3948 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:11:22.0802 3948 ErrDev - ok
21:11:22.0864 3948 EuMusDesignVirtualAudioCableWdm (932c05033053ada2404fd836c9ab2c70) C:\Windows\system32\DRIVERS\vrtaucbl.sys
21:11:22.0911 3948 EuMusDesignVirtualAudioCableWdm - ok
21:11:22.0942 3948 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:11:22.0942 3948 EventSystem - ok
21:11:22.0989 3948 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:11:23.0005 3948 exfat - ok
21:11:23.0020 3948 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:11:23.0020 3948 fastfat - ok
21:11:23.0098 3948 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:11:23.0129 3948 Fax - ok
21:11:23.0161 3948 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:11:23.0161 3948 fdc - ok
21:11:23.0176 3948 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:11:23.0176 3948 fdPHost - ok
21:11:23.0192 3948 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:11:23.0192 3948 FDResPub - ok
21:11:23.0207 3948 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:11:23.0223 3948 FileInfo - ok
21:11:23.0254 3948 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:11:23.0254 3948 Filetrace - ok
21:11:23.0270 3948 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:11:23.0270 3948 flpydisk - ok
21:11:23.0317 3948 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:11:23.0363 3948 FltMgr - ok
21:11:23.0535 3948 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:11:23.0582 3948 FontCache - ok
21:11:23.0675 3948 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:11:23.0675 3948 FontCache3.0.0.0 - ok
21:11:23.0691 3948 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:11:23.0691 3948 FsDepends - ok
21:11:23.0738 3948 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:11:23.0785 3948 Fs_Rec - ok
21:11:23.0831 3948 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:11:23.0894 3948 fvevol - ok
21:11:23.0925 3948 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:11:23.0925 3948 gagp30kx - ok
21:11:23.0972 3948 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:11:24.0019 3948 GEARAspiWDM - ok
21:11:24.0097 3948 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:11:24.0159 3948 gpsvc - ok
21:11:24.0268 3948 Greg_Service (816fd5a6f3c2f3d600900096632fc60e) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
21:11:24.0268 3948 Greg_Service - ok
21:11:24.0346 3948 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:11:24.0346 3948 gupdate - ok
21:11:24.0362 3948 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:11:24.0362 3948 gupdatem - ok
21:11:24.0502 3948 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:11:24.0502 3948 hcw85cir - ok
21:11:24.0580 3948 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:11:24.0658 3948 HdAudAddService - ok
21:11:24.0705 3948 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:11:24.0705 3948 HDAudBus - ok
21:11:24.0705 3948 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:11:24.0721 3948 HidBatt - ok
21:11:24.0752 3948 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:11:24.0752 3948 HidBth - ok
21:11:24.0767 3948 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:11:24.0783 3948 HidIr - ok
21:11:24.0799 3948 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:11:24.0799 3948 hidserv - ok
21:11:24.0830 3948 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:11:24.0877 3948 HidUsb - ok
21:11:24.0908 3948 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:11:24.0908 3948 hkmsvc - ok
21:11:24.0955 3948 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:11:24.0955 3948 HomeGroupListener - ok
21:11:25.0001 3948 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:11:25.0001 3948 HomeGroupProvider - ok
21:11:25.0033 3948 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:11:25.0095 3948 HpSAMD - ok
21:11:25.0220 3948 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:11:25.0267 3948 HTTP - ok
21:11:25.0313 3948 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:11:25.0345 3948 hwpolicy - ok
21:11:25.0407 3948 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:11:25.0423 3948 i8042prt - ok
21:11:25.0532 3948 IAANTMON (660bf3255a1eb18ed803fd2fba6ae400) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:11:25.0532 3948 IAANTMON - ok
21:11:25.0594 3948 iaStor (be7d72fcf442c26975942007e0831241) C:\Windows\system32\DRIVERS\iaStor.sys
21:11:25.0594 3948 iaStor - ok
21:11:25.0688 3948 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:11:25.0735 3948 iaStorV - ok
21:11:26.0140 3948 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:11:26.0187 3948 idsvc - ok
21:11:26.0218 3948 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:11:26.0218 3948 iirsp - ok
21:11:26.0281 3948 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:11:26.0281 3948 IKEEXT - ok
21:11:26.0437 3948 IntcAzAudAddService (42943bb3ab7a405b30eff7c8283cc129) C:\Windows\system32\drivers\RTKVHD64.sys
21:11:26.0483 3948 IntcAzAudAddService - ok
21:11:26.0842 3948 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:11:26.0842 3948 intelide - ok
21:11:26.0905 3948 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:11:26.0905 3948 intelppm - ok
21:11:26.0936 3948 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:11:26.0936 3948 IPBusEnum - ok
21:11:26.0967 3948 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:11:26.0998 3948 IpFilterDriver - ok
21:11:27.0092 3948 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:11:27.0092 3948 iphlpsvc - ok
21:11:27.0170 3948 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:11:27.0217 3948 IPMIDRV - ok
21:11:27.0279 3948 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:11:27.0279 3948 IPNAT - ok
21:11:27.0669 3948 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
21:11:27.0669 3948 iPod Service - ok
21:11:27.0685 3948 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:11:27.0685 3948 IRENUM - ok
21:11:27.0731 3948 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:11:27.0747 3948 isapnp - ok
21:11:28.0589 3948 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:11:28.0667 3948 iScsiPrt - ok
21:11:28.0730 3948 JRAID (2224abc439d115a44edb5630a92c1d7e) C:\Windows\system32\DRIVERS\jraid.sys
21:11:28.0777 3948 JRAID - ok
21:11:28.0839 3948 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:11:28.0839 3948 kbdclass - ok
21:11:28.0886 3948 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:11:28.0933 3948 kbdhid - ok
21:11:28.0979 3948 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:11:28.0979 3948 KeyIso - ok
21:11:28.0995 3948 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:11:29.0026 3948 KSecDD - ok
21:11:29.0057 3948 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:11:29.0089 3948 KSecPkg - ok
21:11:29.0104 3948 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:11:29.0104 3948 ksthunk - ok
21:11:29.0167 3948 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:11:29.0182 3948 KtmRm - ok
21:11:29.0229 3948 LADF_DHP2 (86dcbf8a41c78561a1da07ab5e7b1ccc) C:\Windows\system32\DRIVERS\ladfDHP2amd64.sys
21:11:29.0291 3948 LADF_DHP2 - ok
21:11:29.0338 3948 LADF_SBVM (175c04c7813ce64616b5cb046e5e1383) C:\Windows\system32\DRIVERS\ladfSBVMamd64.sys
21:11:29.0463 3948 LADF_SBVM - ok
21:11:29.0525 3948 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:11:29.0525 3948 LanmanServer - ok
21:11:29.0572 3948 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:11:29.0572 3948 LanmanWorkstation - ok
21:11:29.0775 3948 LBTServ (7447f069ce66633dafa0b2deee7af5ba) C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
21:11:29.0775 3948 LBTServ - ok
21:11:29.0791 3948 LGBusEnum (fa529fb35694c24bf98a9ef67c1cd9d0) C:\Windows\system32\drivers\LGBusEnum.sys
21:11:29.0837 3948 LGBusEnum - ok
21:11:29.0962 3948 LGPBTDD (f705a641c18df31b48b5dbda94b425e4) C:\Windows\system32\Drivers\LGPBTDD.sys
21:11:30.0009 3948 LGPBTDD - ok
21:11:30.0040 3948 LGVirHid (94b29ce153765e768f004fb3440be2b0) C:\Windows\system32\drivers\LGVirHid.sys
21:11:30.0040 3948 LGVirHid - ok
21:11:30.0056 3948 LHidFilt (0a7d6ed578d85f0c35353424ee3f5245) C:\Windows\system32\DRIVERS\LHidFilt.Sys
21:11:30.0118 3948 LHidFilt - ok
21:11:30.0149 3948 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:11:30.0165 3948 lltdio - ok
21:11:30.0212 3948 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:11:30.0212 3948 lltdsvc - ok
21:11:30.0243 3948 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:11:30.0243 3948 lmhosts - ok
21:11:30.0259 3948 LMouFilt (6542e2e6db58118fbb1b82a68ce3aff9) C:\Windows\system32\DRIVERS\LMouFilt.Sys
21:11:30.0305 3948 LMouFilt - ok
21:11:30.0352 3948 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:11:30.0352 3948 LSI_FC - ok
21:11:30.0368 3948 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:11:30.0368 3948 LSI_SAS - ok
21:11:30.0571 3948 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:11:30.0586 3948 LSI_SAS2 - ok
21:11:30.0617 3948 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:11:30.0617 3948 LSI_SCSI - ok
21:11:30.0649 3948 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:11:30.0649 3948 luafv - ok
21:11:30.0867 3948 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
21:11:30.0867 3948 MBAMProtector - ok
21:11:31.0007 3948 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:11:31.0007 3948 MBAMService - ok
21:11:31.0257 3948 MBfilt (754c8bf43f0dd4b54865f174a62761e9) C:\Windows\system32\drivers\MBfilt64.sys
21:11:31.0335 3948 MBfilt - ok
21:11:32.0271 3948 McAfee SiteAdvisor Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:11:32.0287 3948 McAfee SiteAdvisor Service - ok
21:11:32.0349 3948 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
21:11:32.0427 3948 McComponentHostService - ok
21:11:32.0458 3948 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:11:32.0474 3948 McMPFSvc - ok
21:11:32.0474 3948 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:11:32.0474 3948 mcmscsvc - ok
21:11:32.0505 3948 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:11:32.0505 3948 McNaiAnn - ok
21:11:32.0536 3948 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:11:32.0536 3948 McNASvc - ok
21:11:32.0645 3948 McODS (dd2321925274f2902929d76ce2b0eb45) C:\Program Files\McAfee\VirusScan\mcods.exe
21:11:32.0645 3948 McODS - ok
21:11:32.0692 3948 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:11:32.0708 3948 McProxy - ok
21:11:32.0755 3948 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
21:11:32.0770 3948 McShield - ok
21:11:32.0911 3948 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:11:32.0957 3948 Mcx2Svc - ok
21:11:32.0989 3948 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:11:33.0004 3948 megasas - ok
21:11:33.0035 3948 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:11:33.0035 3948 MegaSR - ok
21:11:33.0113 3948 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys
21:11:33.0160 3948 mfeapfk - ok
21:11:33.0223 3948 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys
21:11:33.0269 3948 mfeavfk - ok
21:11:33.0332 3948 mfeavfk01 - ok
21:11:33.0394 3948 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:11:33.0394 3948 mfefire - ok
21:11:33.0441 3948 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\Windows\system32\drivers\mfefirek.sys
21:11:33.0503 3948 mfefirek - ok
21:11:33.0597 3948 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys
21:11:33.0659 3948 mfehidk - ok
21:11:33.0691 3948 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\Windows\system32\DRIVERS\mfenlfk.sys
21:11:33.0722 3948 mfenlfk - ok
21:11:33.0753 3948 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys
21:11:33.0753 3948 mferkdet - ok
21:11:33.0784 3948 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Windows\system32\mfevtps.exe
21:11:33.0784 3948 mfevtp - ok
21:11:33.0847 3948 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys
21:11:33.0909 3948 mfewfpk - ok
21:11:33.0940 3948 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:11:33.0940 3948 MMCSS - ok
21:11:33.0987 3948 MOBKbackup (8cc001c65c31633171991fa72a551d43) C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
21:11:33.0987 3948 MOBKbackup - ok
21:11:34.0003 3948 MOBKFilter (3800c23d0d90c59aafcdefdc82b5c4af) C:\Windows\system32\DRIVERS\MOBK.sys
21:11:34.0049 3948 MOBKFilter - ok
21:11:34.0065 3948 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:11:34.0065 3948 Modem - ok
21:11:34.0081 3948 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:11:34.0096 3948 monitor - ok
21:11:34.0143 3948 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
21:11:34.0143 3948 mouclass - ok
21:11:34.0174 3948 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:11:34.0174 3948 mouhid - ok
21:11:34.0221 3948 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:11:34.0283 3948 mountmgr - ok
21:11:34.0315 3948 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:11:34.0361 3948 mpio - ok
21:11:34.0377 3948 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:11:34.0377 3948 mpsdrv - ok
21:11:34.0486 3948 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:11:34.0486 3948 MpsSvc - ok
21:11:34.0564 3948 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:11:34.0627 3948 MRxDAV - ok
21:11:34.0673 3948 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:11:34.0705 3948 mrxsmb - ok
21:11:34.0767 3948 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:11:34.0829 3948 mrxsmb10 - ok
21:11:34.0829 3948 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:11:34.0861 3948 mrxsmb20 - ok
21:11:34.0954 3948 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:11:35.0001 3948 msahci - ok
21:11:35.0063 3948 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:11:35.0126 3948 msdsm - ok
21:11:35.0157 3948 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:11:35.0157 3948 MSDTC - ok
21:11:35.0173 3948 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:11:35.0173 3948 Msfs - ok
21:11:35.0188 3948 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:11:35.0204 3948 mshidkmdf - ok
21:11:35.0235 3948 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:11:35.0235 3948 msisadrv - ok
21:11:35.0266 3948 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:11:35.0282 3948 MSiSCSI - ok
21:11:35.0282 3948 msiserver - ok
21:11:35.0438 3948 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:11:35.0438 3948 MSK80Service - ok
21:11:35.0469 3948 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:11:35.0469 3948 MSKSSRV - ok
21:11:35.0500 3948 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:11:35.0500 3948 MSPCLOCK - ok
21:11:35.0516 3948 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:11:35.0516 3948 MSPQM - ok
21:11:35.0578 3948 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:11:35.0625 3948 MsRPC - ok
21:11:35.0656 3948 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:11:35.0656 3948 mssmbios - ok
21:11:35.0672 3948 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:11:35.0672 3948 MSTEE - ok
21:11:35.0687 3948 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:11:35.0687 3948 MTConfig - ok
21:11:35.0687 3948 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:11:35.0703 3948 Mup - ok
21:11:35.0719 3948 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
21:11:35.0781 3948 mwlPSDFilter - ok
21:11:35.0812 3948 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
21:11:35.0875 3948 mwlPSDNServ - ok
21:11:35.0906 3948 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
21:11:35.0937 3948 mwlPSDVDisk - ok
21:11:36.0077 3948 MWLService (2f139207f618ec2933830227eeffddb4) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
21:11:36.0077 3948 MWLService - ok
21:11:36.0140 3948 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:11:36.0155 3948 napagent - ok
21:11:36.0202 3948 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:11:36.0218 3948 NativeWifiP - ok
21:11:36.0296 3948 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:11:36.0296 3948 NDIS - ok
21:11:36.0311 3948 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:11:36.0327 3948 NdisCap - ok
21:11:36.0343 3948 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:11:36.0343 3948 NdisTapi - ok
21:11:36.0374 3948 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:11:36.0421 3948 Ndisuio - ok
21:11:36.0452 3948 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:11:36.0483 3948 NdisWan - ok
21:11:36.0514 3948 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:11:36.0561 3948 NDProxy - ok
21:11:36.0779 3948 Nero BackItUp Scheduler 4.0 (7d2633295eb6ff2b938185874884059d) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
21:11:36.0795 3948 Nero BackItUp Scheduler 4.0 - ok
21:11:36.0842 3948 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:11:36.0842 3948 NetBIOS - ok
21:11:36.0920 3948 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:11:36.0982 3948 NetBT - ok
21:11:37.0029 3948 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:11:37.0029 3948 Netlogon - ok
21:11:37.0076 3948 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:11:37.0076 3948 Netman - ok
21:11:37.0185 3948 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:37.0185 3948 NetMsmqActivator - ok
21:11:37.0185 3948 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:37.0185 3948 NetPipeActivator - ok
21:11:37.0279 3948 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:11:37.0294 3948 netprofm - ok
21:11:37.0294 3948 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:37.0294 3948 NetTcpActivator - ok
21:11:37.0294 3948 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:37.0294 3948 NetTcpPortSharing - ok
21:11:37.0341 3948 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:11:37.0357 3948 nfrd960 - ok
21:11:37.0388 3948 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:11:37.0388 3948 NlaSvc - ok
21:11:37.0435 3948 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:11:37.0435 3948 Npfs - ok
21:11:37.0481 3948 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:11:37.0481 3948 nsi - ok
21:11:37.0497 3948 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:11:37.0497 3948 nsiproxy - ok
21:11:37.0606 3948 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:11:37.0669 3948 Ntfs - ok
21:11:37.0762 3948 NTI IScheduleSvc (070ec05d5b1447e9bbf4167980ad7518) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
21:11:37.0762 3948 NTI IScheduleSvc - ok
21:11:37.0840 3948 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
21:11:37.0903 3948 NTIDrvr - ok
21:11:37.0918 3948 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:11:37.0918 3948 Null - ok
21:11:37.0981 3948 NVHDA (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
21:11:38.0043 3948 NVHDA - ok
21:11:39.0478 3948 nvlddmkm (b15258b1f45f9571758ac6bb2f043b01) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:11:39.0556 3948 nvlddmkm - ok
21:11:39.0712 3948 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:11:39.0759 3948 nvraid - ok
21:11:39.0806 3948 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:11:39.0868 3948 nvstor - ok
21:11:40.0009 3948 nvsvc (2d7092fec9bd2aca199673bba2ba9277) C:\Windows\system32\nvvsvc.exe
21:11:40.0024 3948 nvsvc - ok
21:11:40.0601 3948 nvUpdatusService (7e22de30e222bfdfcec7e77032baf3cd) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
21:11:40.0617 3948 nvUpdatusService - ok
21:11:40.0804 3948 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:11:40.0820 3948 nv_agp - ok
21:11:40.0851 3948 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:11:40.0851 3948 ohci1394 - ok
21:11:41.0007 3948 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:11:41.0007 3948 ose - ok
21:11:41.0647 3948 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:11:41.0678 3948 osppsvc - ok
21:11:41.0818 3948 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:11:41.0834 3948 p2pimsvc - ok
21:11:41.0865 3948 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:11:41.0927 3948 p2psvc - ok
21:11:41.0959 3948 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:11:41.0974 3948 Parport - ok
21:11:42.0005 3948 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:11:42.0037 3948 partmgr - ok
21:11:42.0068 3948 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:11:42.0068 3948 PcaSvc - ok
21:11:42.0115 3948 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:11:42.0146 3948 pci - ok
21:11:42.0177 3948 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:11:42.0177 3948 pciide - ok
21:11:42.0208 3948 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:11:42.0208 3948 pcmcia - ok
21:11:42.0239 3948 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:11:42.0239 3948 pcw - ok
21:11:42.0286 3948 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:11:42.0286 3948 PEAUTH - ok
21:11:42.0349 3948 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:11:42.0364 3948 PerfHost - ok
21:11:42.0536 3948 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:11:42.0583 3948 pla - ok
21:11:42.0661 3948 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:11:42.0661 3948 PlugPlay - ok
21:11:42.0707 3948 PnkBstrA - ok
21:11:42.0723 3948 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:11:42.0723 3948 PNRPAutoReg - ok
21:11:42.0754 3948 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:11:42.0754 3948 PNRPsvc - ok
21:11:42.0785 3948 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:11:42.0832 3948 PolicyAgent - ok
21:11:42.0973 3948 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:11:42.0973 3948 Power - ok
21:11:43.0019 3948 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:11:43.0066 3948 PptpMiniport - ok
21:11:43.0129 3948 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:11:43.0144 3948 Processor - ok
21:11:43.0191 3948 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:11:43.0191 3948 ProfSvc - ok
21:11:43.0222 3948 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:11:43.0222 3948 ProtectedStorage - ok
21:11:43.0269 3948 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:11:43.0316 3948 Psched - ok
21:11:43.0472 3948 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:11:43.0519 3948 ql2300 - ok
21:11:43.0643 3948 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:11:43.0643 3948 ql40xx - ok
21:11:43.0675 3948 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:11:43.0690 3948 QWAVE - ok
21:11:43.0706 3948 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:11:43.0721 3948 QWAVEdrv - ok
21:11:43.0737 3948 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:11:43.0737 3948 RasAcd - ok
21:11:43.0768 3948 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:11:43.0768 3948 RasAgileVpn - ok
21:11:43.0784 3948 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:11:43.0799 3948 RasAuto - ok
21:11:43.0831 3948 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:11:43.0877 3948 Rasl2tp - ok
21:11:43.0940 3948 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:11:43.0987 3948 RasMan - ok
21:11:44.0018 3948 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:11:44.0018 3948 RasPppoe - ok
21:11:44.0049 3948 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:11:44.0049 3948 RasSstp - ok
21:11:44.0096 3948 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:11:44.0158 3948 rdbss - ok
21:11:44.0174 3948 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:11:44.0189 3948 rdpbus - ok
21:11:44.0205 3948 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:11:44.0205 3948 RDPCDD - ok
21:11:44.0205 3948 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:11:44.0221 3948 RDPENCDD - ok
21:11:44.0236 3948 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:11:44.0236 3948 RDPREFMP - ok
21:11:44.0283 3948 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:11:44.0314 3948 RDPWD - ok
21:11:44.0377 3948 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:11:44.0423 3948 rdyboost - ok
21:11:44.0439 3948 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:11:44.0455 3948 RemoteAccess - ok
21:11:44.0470 3948 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:11:44.0486 3948 RemoteRegistry - ok
21:11:44.0517 3948 RimUsb (71b48ddaf5e9c2b40e64de5c405f5aac) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
21:11:44.0548 3948 RimUsb - ok
21:11:44.0564 3948 RimVSerPort (c903d49655b4aae46673f0aaa6be0f58) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
21:11:44.0595 3948 RimVSerPort - ok
21:11:44.0657 3948 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
21:11:44.0673 3948 ROOTMODEM - ok
21:11:44.0689 3948 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:11:44.0689 3948 RpcEptMapper - ok
21:11:44.0704 3948 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:11:44.0720 3948 RpcLocator - ok
21:11:44.0767 3948 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:11:44.0782 3948 RpcSs - ok
21:11:44.0782 3948 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:11:44.0798 3948 rspndr - ok
21:11:44.0829 3948 RTL8167 (b49dc435ae3695bac5623dd94b05732d) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:11:44.0891 3948 RTL8167 - ok
21:11:44.0923 3948 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:11:44.0938 3948 SamSs - ok
21:11:44.0985 3948 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:11:45.0047 3948 sbp2port - ok
21:11:45.0063 3948 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:11:45.0079 3948 SCardSvr - ok
21:11:45.0110 3948 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:11:45.0157 3948 scfilter - ok
21:11:45.0359 3948 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:11:45.0406 3948 Schedule - ok
21:11:45.0593 3948 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:11:45.0593 3948 SCPolicySvc - ok
21:11:45.0625 3948 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:11:45.0625 3948 SDRSVC - ok
21:11:45.0703 3948 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:11:45.0734 3948 secdrv - ok
21:11:45.0827 3948 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:11:45.0937 3948 seclogon - ok
21:11:45.0983 3948 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:11:45.0983 3948 SENS - ok
21:11:46.0015 3948 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:11:46.0015 3948 SensrSvc - ok
21:11:46.0061 3948 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:11:46.0061 3948 Serenum - ok
21:11:46.0077 3948 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:11:46.0077 3948 Serial - ok
21:11:46.0124 3948 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:11:46.0124 3948 sermouse - ok
21:11:46.0155 3948 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:11:46.0202 3948 SessionEnv - ok
21:11:46.0358 3948 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:11:46.0389 3948 sffdisk - ok
21:11:46.0389 3948 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:11:46.0405 3948 sffp_mmc - ok
21:11:46.0405 3948 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:11:46.0451 3948 sffp_sd - ok
21:11:46.0483 3948 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:11:46.0498 3948 sfloppy - ok
21:11:46.0529 3948 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:11:46.0545 3948 SharedAccess - ok
21:11:46.0576 3948 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:11:46.0592 3948 ShellHWDetection - ok
21:11:46.0623 3948 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:11:46.0623 3948 SiSRaid2 - ok
21:11:46.0639 3948 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:11:46.0654 3948 SiSRaid4 - ok
21:11:46.0670 3948 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:11:46.0685 3948 Smb - ok
21:11:46.0717 3948 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:11:46.0732 3948 SNMPTRAP - ok
21:11:46.0748 3948 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:11:46.0748 3948 spldr - ok
21:11:46.0810 3948 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:11:46.0810 3948 Spooler - ok
21:11:47.0497 3948 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:11:47.0512 3948 sppsvc - ok
21:11:47.0637 3948 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:11:47.0653 3948 sppuinotify - ok
21:11:47.0715 3948 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:11:47.0777 3948 srv - ok
21:11:47.0824 3948 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:11:47.0855 3948 srv2 - ok
21:11:47.0871 3948 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:11:47.0902 3948 srvnet - ok
21:11:47.0933 3948 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:11:47.0933 3948 SSDPSRV - ok
21:11:47.0949 3948 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:11:47.0949 3948 SstpSvc - ok
21:11:48.0043 3948 Steam Client Service - ok
21:11:48.0167 3948 Stereo Service (9e1222c417291bc836210743624a8e5e) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:11:48.0167 3948 Stereo Service - ok
21:11:48.0199 3948 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:11:48.0199 3948 stexstor - ok
21:11:48.0292 3948 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:11:48.0292 3948 stisvc - ok
21:11:48.0355 3948 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:11:48.0355 3948 swenum - ok
21:11:48.0417 3948 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:11:48.0417 3948 swprv - ok
21:11:48.0526 3948 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:11:48.0573 3948 SysMain - ok
21:11:48.0698 3948 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:11:48.0729 3948 TabletInputService - ok
21:11:48.0791 3948 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:11:48.0838 3948 TapiSrv - ok
21:11:48.0854 3948 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:11:48.0854 3948 TBS - ok
21:11:49.0010 3948 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:11:49.0088 3948 Tcpip - ok
21:11:49.0197 3948 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:11:49.0213 3948 TCPIP6 - ok
21:11:49.0291 3948 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:11:49.0337 3948 tcpipreg - ok
21:11:49.0369 3948 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:11:49.0369 3948 TDPIPE - ok
21:11:49.0384 3948 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:11:49.0447 3948 TDTCP - ok
21:11:49.0478 3948 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:11:49.0509 3948 tdx - ok
21:11:49.0556 3948 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:11:49.0587 3948 TermDD - ok
21:11:49.0665 3948 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:11:49.0665 3948 TermService - ok
21:11:49.0681 3948 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:11:49.0681 3948 Themes - ok
21:11:49.0696 3948 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:11:49.0712 3948 THREADORDER - ok
21:11:49.0712 3948 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:11:49.0727 3948 TrkWks - ok
21:11:49.0774 3948 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:11:49.0774 3948 TrustedInstaller - ok
21:11:49.0805 3948 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:11:49.0868 3948 tssecsrv - ok
21:11:49.0899 3948 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:11:49.0930 3948 TsUsbFlt - ok
21:11:49.0993 3948 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:11:50.0024 3948 tunnel - ok
21:11:50.0195 3948 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:11:50.0211 3948 uagp35 - ok
21:11:50.0242 3948 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
21:11:50.0305 3948 UBHelper - ok
21:11:50.0336 3948 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:11:50.0398 3948 udfs - ok
21:11:50.0429 3948 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:11:50.0429 3948 UI0Detect - ok
21:11:50.0476 3948 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:11:50.0476 3948 uliagpkx - ok
21:11:50.0523 3948 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:11:50.0570 3948 umbus - ok
21:11:50.0601 3948 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:11:50.0601 3948 UmPass - ok
21:11:50.0648 3948 Updater Service (70dde3a86dbeb1d6c3c30ad687b1877a) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
21:11:50.0648 3948 Updater Service - ok
21:11:50.0773 3948 Updater Service for StartNow Toolbar (87d6b7229afbba2ea523e28c5137c980) C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe
21:11:50.0788 3948 Updater Service for StartNow Toolbar - ok
21:11:50.0804 3948 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:11:50.0819 3948 upnphost - ok
21:11:50.0851 3948 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
21:11:50.0897 3948 USBAAPL64 - ok
21:11:50.0944 3948 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
21:11:51.0007 3948 usbaudio - ok
21:11:51.0022 3948 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:11:51.0053 3948 usbccgp - ok
21:11:51.0085 3948 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:11:51.0100 3948 usbcir - ok
21:11:51.0116 3948 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:11:51.0178 3948 usbehci - ok
21:11:51.0209 3948 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:11:51.0272 3948 usbhub - ok
21:11:51.0303 3948 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:11:51.0334 3948 usbohci - ok
21:11:51.0350 3948 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:11:51.0350 3948 usbprint - ok
21:11:51.0397 3948 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:11:51.0412 3948 usbscan - ok
21:11:51.0428 3948 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:11:51.0475 3948 USBSTOR - ok
21:11:51.0506 3948 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
21:11:51.0553 3948 usbuhci - ok
21:11:51.0568 3948 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:11:51.0568 3948 UxSms - ok
21:11:51.0599 3948 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:11:51.0599 3948 VaultSvc - ok
21:11:51.0631 3948 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:11:51.0631 3948 vdrvroot - ok
21:11:51.0709 3948 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:11:51.0818 3948 vds - ok
21:11:51.0818 3948 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:11:51.0833 3948 vga - ok
21:11:51.0849 3948 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:11:51.0849 3948 VgaSave - ok
21:11:51.0880 3948 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:11:51.0927 3948 vhdmp - ok
21:11:51.0958 3948 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:11:51.0974 3948 viaide - ok
21:11:51.0989 3948 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:11:52.0036 3948 volmgr - ok
21:11:52.0067 3948 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:11:52.0130 3948 volmgrx - ok
21:11:52.0395 3948 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:11:52.0457 3948 volsnap - ok
21:11:52.0504 3948 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:11:52.0504 3948 vsmraid - ok
21:11:52.0629 3948 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:11:52.0645 3948 VSS - ok
21:11:52.0738 3948 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
21:11:52.0738 3948 vwifibus - ok
21:11:52.0801 3948 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:11:52.0801 3948 W32Time - ok
21:11:52.0832 3948 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:11:52.0832 3948 WacomPen - ok
21:11:52.0863 3948 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:11:52.0910 3948 WANARP - ok
21:11:52.0925 3948 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:11:52.0925 3948 Wanarpv6 - ok
21:11:53.0035 3948 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:11:53.0113 3948 WatAdminSvc - ok
21:11:53.0222 3948 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:11:53.0284 3948 wbengine - ok
21:11:53.0409 3948 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:11:53.0425 3948 WbioSrvc - ok
21:11:53.0487 3948 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:11:53.0549 3948 wcncsvc - ok
21:11:53.0565 3948 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:11:53.0565 3948 WcsPlugInService - ok
21:11:53.0612 3948 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:11:53.0612 3948 Wd - ok
21:11:53.0659 3948 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:11:53.0674 3948 Wdf01000 - ok
21:11:53.0690 3948 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:11:53.0705 3948 WdiServiceHost - ok
21:11:53.0705 3948 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:11:53.0705 3948 WdiSystemHost - ok
21:11:53.0737 3948 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:11:53.0783 3948 WebClient - ok
21:11:53.0815 3948 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:11:53.0815 3948 Wecsvc - ok
21:11:53.0830 3948 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:11:53.0830 3948 wercplsupport - ok
21:11:53.0846 3948 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:11:53.0861 3948 WerSvc - ok
21:11:53.0861 3948 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:11:53.0877 3948 WfpLwf - ok
21:11:53.0877 3948 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:11:53.0877 3948 WIMMount - ok
21:11:53.0893 3948 WinDefend - ok
21:11:53.0908 3948 WinHttpAutoProxySvc - ok
21:11:53.0955 3948 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:11:53.0971 3948 Winmgmt - ok
21:11:54.0111 3948 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:11:54.0173 3948 WinRM - ok
21:11:54.0283 3948 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:11:54.0329 3948 WinUsb - ok
21:11:54.0392 3948 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:11:54.0423 3948 Wlansvc - ok
21:11:54.0673 3948 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:11:54.0688 3948 wlidsvc - ok
21:11:54.0797 3948 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:11:54.0797 3948 WmiAcpi - ok
21:11:54.0860 3948 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:11:54.0875 3948 wmiApSrv - ok
21:11:54.0938 3948 WMPNetworkSvc - ok
21:11:54.0969 3948 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:11:54.0969 3948 WPCSvc - ok
21:11:55.0187 3948 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:11:55.0219 3948 WPDBusEnum - ok
21:11:55.0265 3948 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:11:55.0265 3948 ws2ifsl - ok
21:11:55.0281 3948 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:11:55.0281 3948 wscsvc - ok
21:11:55.0281 3948 WSearch - ok
21:11:55.0546 3948 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:11:55.0562 3948 wuauserv - ok
21:11:55.0671 3948 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:11:55.0718 3948 WudfPf - ok
21:11:55.0733 3948 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:11:55.0765 3948 WUDFRd - ok
21:11:55.0811 3948 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:11:55.0858 3948 wudfsvc - ok
21:11:55.0905 3948 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:11:55.0921 3948 WwanSvc - ok
21:11:55.0952 3948 MBR (0x1B8) (70e629b51c16b3c007730c6ae57144c9) \Device\Harddisk0\DR0
21:11:57.0715 3948 \Device\Harddisk0\DR0 - ok
21:11:57.0715 3948 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
21:11:57.0793 3948 \Device\Harddisk1\DR1 - ok
21:11:57.0808 3948 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk2\DR2
21:11:57.0886 3948 \Device\Harddisk2\DR2 - ok
21:11:57.0902 3948 Boot (0x1200) (3d1f9dea5fb278a17a918b13f4cef8a0) \Device\Harddisk0\DR0\Partition0
21:11:57.0902 3948 \Device\Harddisk0\DR0\Partition0 - ok
21:11:57.0917 3948 Boot (0x1200) (c680114ad9545629bc010a9685a7d6f2) \Device\Harddisk0\DR0\Partition1
21:11:57.0917 3948 \Device\Harddisk0\DR0\Partition1 - ok
21:11:57.0917 3948 Boot (0x1200) (22838f8d4579d6e01e5548b1b5596370) \Device\Harddisk1\DR1\Partition0
21:11:57.0917 3948 \Device\Harddisk1\DR1\Partition0 - ok
21:11:57.0917 3948 Boot (0x1200) (6f438f2119419d9639ffe02e2508012a) \Device\Harddisk1\DR1\Partition1
21:11:57.0917 3948 \Device\Harddisk1\DR1\Partition1 - ok
21:11:57.0917 3948 Boot (0x1200) (b1e27aa018409de6bfd73f8afb883a65) \Device\Harddisk2\DR2\Partition0
21:11:57.0933 3948 \Device\Harddisk2\DR2\Partition0 - ok
21:11:57.0933 3948 Boot (0x1200) (304d86ffbfc5d2280ebdd402ff9dc5e7) \Device\Harddisk2\DR2\Partition1
21:11:57.0933 3948 \Device\Harddisk2\DR2\Partition1 - ok
21:11:57.0933 3948 ============================================================
21:11:57.0933 3948 Scan finished
21:11:57.0933 3948 ============================================================
21:11:57.0933 2892 Detected object count: 0
21:11:57.0933 2892 Actual detected object count: 0

#9 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 09 July 2012 - 08:27 PM

aswMBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-09 21:15:07
-----------------------------
21:15:07.295 OS Version: Windows x64 6.1.7601 Service Pack 1
21:15:07.295 Number of processors: 8 586 0x1A05
21:15:07.295 ComputerName: RICHARD-PC UserName: Richard
21:15:09.619 Initialize success
21:17:28.053 AVAST engine defs: 12070901
21:20:03.528 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:20:03.543 Disk 0 Vendor: WDC_WD15 01.0 Size: 1430799MB BusType: 3
21:20:03.543 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
21:20:03.543 Disk 1 Vendor: WDC_WD50 12.0 Size: 476940MB BusType: 3
21:20:03.543 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IAAStorageDevice-3
21:20:03.543 Disk 2 Vendor: ST320005 CC34 Size: 1907729MB BusType: 3
21:20:03.559 Disk 0 MBR read successfully
21:20:03.559 Disk 0 MBR scan
21:20:03.559 Disk 0 unknown MBR code
21:20:03.574 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14000 MB offset 2048
21:20:03.590 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 28674048
21:20:03.590 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 1416694 MB offset 28884870
21:20:03.606 Disk 0 scanning C:\Windows\system32\drivers
21:20:13.902 Service scanning
21:20:33.745 Modules scanning
21:20:33.745 Disk 0 trace - called modules:
21:20:33.776 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
21:20:33.776 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800ae8d060]
21:20:33.792 3 CLASSPNP.SYS[fffff8800181743f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800abb3050]
21:20:36.147 AVAST engine scan C:\Windows
21:20:39.813 AVAST engine scan C:\Windows\system32
21:24:38.244 AVAST engine scan C:\Windows\system32\drivers
21:24:49.601 AVAST engine scan C:\Users\Richard
21:25:49.957 Disk 0 MBR has been saved successfully to "C:\Users\Richard\Desktop\MBR.dat"
21:25:49.973 The log file has been saved successfully to "C:\Users\Richard\Desktop\aswMBR.txt"

#10 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 09 July 2012 - 09:04 PM

I was away from my computer for a bit and a message from Malwarebytes popped up and said it had detected the Trojan.FakeVLC. I clicked to quaantine it. I'm back to being worried because I thought it had removed it earlier.

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,219 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:16 PM

Posted 09 July 2012 - 10:23 PM

Hello again, do you have a VLC plyer installed?


Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select FULL scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.




Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 09 July 2012 - 11:16 PM

First, thanks for all of the time you are having to spend on this. Second, I'm not sure what a VLC plyer is so I don't know if I have one installed.

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,219 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:16 PM

Posted 09 July 2012 - 11:27 PM

OK,it's a Media player. VLC media player


We should see in in the Minitoolbox log,now that I think about it.

I have to leave soon,so I will look back tomorrow.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 10 July 2012 - 06:13 AM

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.10.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Richard :: RICHARD-PC [administrator]

Protection: Enabled

7/10/2012 12:32:52 AM
mbam-log-2012-07-10 (00-32-52).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 739800
Time elapsed: 4 hour(s), 11 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Program Files (x86)\VlcPlus\Extras\setup.exe (PUP.Zugo) -> Quarantined and deleted successfully.

(end)

#15 PhinDorsal

PhinDorsal
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 10 July 2012 - 06:24 AM

Note: When I ran the MiniToolBox Windows defender Alert told me I had potentially unwanted software: Adware:Win32/OpenCandy. I haven't selected an option for that yet and the box is still on my screen.


MiniToolBox by Farbar Version: 25-06-2012
Ran by Richard (administrator) on 10-07-2012 at 07:20:25
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection 2 (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection 2" nexthop=192.168.1.254 metric=1 publish=Yes
add address name="Local Area Connection 2" address=192.168.1.150 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Richard-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller #2
Physical Address. . . . . . . . . : 40-61-86-60-DD-2C
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e4a4:934d:3cc6:32a9%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.150(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 306209158
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-39-32-8B-40-61-86-60-DD-2D
DNS Servers . . . . . . . . . . . : 216.227.16.62
137.118.1.32
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : domain_not_set.invalid
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 40-61-86-60-DD-2D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{539730F1-5498-4986-A198-40CE9E6B20A2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1416:28c4:bc61:6f38(Preferred)
Link-local IPv6 Address . . . . . : fe80::1416:28c4:bc61:6f38%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.domain_not_set.invalid:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: sdsl-blt-216-227-16-62.gtcom.net
Address: 216.227.16.62

Name: google.com
Addresses: 2001:4860:800a::66
74.125.130.100
74.125.130.101
74.125.130.102
74.125.130.113
74.125.130.138
74.125.130.139


Pinging google.com [74.125.130.139] with 32 bytes of data:
Reply from 74.125.130.139: bytes=32 time=659ms TTL=43
Reply from 74.125.130.139: bytes=32 time=85ms TTL=43

Ping statistics for 74.125.130.139:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 85ms, Maximum = 659ms, Average = 372ms
Server: sdsl-blt-216-227-16-62.gtcom.net
Address: 216.227.16.62

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=196ms TTL=51
Reply from 209.191.122.70: bytes=32 time=104ms TTL=51

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 104ms, Maximum = 196ms, Average = 150ms
Server: sdsl-blt-216-227-16-62.gtcom.net
Address: 216.227.16.62

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...40 61 86 60 dd 2c ......Realtek PCIe GBE Family Controller #2
10...40 61 86 60 dd 2d ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.150 21
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.150 276
192.168.1.150 255.255.255.255 On-link 192.168.1.150 276
192.168.1.255 255.255.255.255 On-link 192.168.1.150 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.150 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.150 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.254 1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:1416:28c4:bc61:6f38/128
On-link
11 276 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::1416:28c4:bc61:6f38/128
On-link
11 276 fe80::e4a4:934d:3cc6:32a9/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/10/2012 05:02:38 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (07/09/2012 09:57:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service) (User: )
Description: Local Hostname Richard-PC.local already in use; will try Richard-PC-2.local instead

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Richard-PC.local. Addr 192.168.1.150

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.96.128:5353 4 Richard-PC.local. Addr 169.254.96.128

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 Richard-PC.local. AAAA FE80:0000:0000:0000:E4A4:934D:3CC6:32A9

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.96.128:5353 4 Richard-PC.local. Addr 169.254.96.128

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing: 4 Richard-PC.local. Addr 192.168.1.150

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.96.128:5353 4 Richard-PC.local. Addr 169.254.96.128

Error: (07/08/2012 01:36:04 PM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 3


System errors:
=============
Error: (07/09/2012 08:23:41 PM) (Source: NetBT) (User: )
Description: A duplicate name has been detected on the TCP network. The IP address of
the computer that sent the message is in the data. Use nbtstat -n in a
command window to see which name is in the Conflict state.

Error: (07/08/2012 02:05:57 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (07/08/2012 01:34:55 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (07/08/2012 01:34:20 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted during detection.

Error: (07/08/2012 01:34:19 PM) (Source: volsnap) (User: )
Description: The shadow copy of volume C: could not create a new paged heap. The system may be low on virtual memory.

Error: (07/08/2012 01:33:24 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (07/08/2012 11:56:43 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Security with the following error:
%%5

Error: (07/08/2012 11:27:24 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Security Scan Component Host Service service terminated unexpectedly. It has done this 1 time(s).

Error: (07/08/2012 11:27:24 AM) (Source: Service Control Manager) (User: )
Description: The NTI IScheduleSvc service terminated unexpectedly. It has done this 1 time(s).

Error: (07/08/2012 11:27:24 AM) (Source: Service Control Manager) (User: )
Description: The PnkBstrA service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (07/10/2012 05:02:38 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (07/09/2012 09:57:47 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service)(User: )
Description: Local Hostname Richard-PC.local already in use; will try Richard-PC-2.local instead

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Richard-PC.local. Addr 192.168.1.150

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.96.128:5353 4 Richard-PC.local. Addr 169.254.96.128

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 Richard-PC.local. AAAA FE80:0000:0000:0000:E4A4:934D:3CC6:32A9

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.96.128:5353 4 Richard-PC.local. Addr 169.254.96.128

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing: 4 Richard-PC.local. Addr 192.168.1.150

Error: (07/08/2012 03:29:46 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.96.128:5353 4 Richard-PC.local. Addr 169.254.96.128

Error: (07/08/2012 01:36:04 PM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description: 3


=========================== Installed Programs ============================

ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
Acer Backup Manager (Version: 2.0.2.39)
Acer eRecovery Management (Version: 4.05.3005)
Acer Registration (Version: 1.02.3006)
Acer ScreenSaver (Version: 1.1.0909)
Acer Updater (Version: 1.01.3014)
Acrobat.com (Version: 1.6.65)
Actiontec Gateway
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Advertising Center (Version: 0.0.0.2)
Airline Tycoon 2
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.14.1.0)
Ask Toolbar Updater (Version: 1.2.0.20007)
Backup Manager Advance (Version: 2.0.2.39)
Battlefield 2
Battlefield: Bad Company 2
BC2CC (Version: 2.3.1.0)
BlackBerry App World Browser Plugin (Version: 2.0.0)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
Blitzkrieg Mod (Version: 4.51)
Bonjour (Version: 3.0.0.10)
CivCity: Rome
CNET TechTracker (Version: 2.0.1)
CoffeeCup Direct FTP (Version: 6.7.17)
CoffeeCup HTML Editor
CoffeeCup LockBox
CoffeeCup MP3 Rip & Burn
CoffeeCup Password Wizard
CoffeeCup Web JukeBox
CoH SGAMappack (Version: 1.0)
Command and Conquer 3: Kane's Wrath
Command and Conquer 3: Tiberium Wars
Command and Conquer 4: Tiberian Twilight
Command and Conquer: Red Alert 3
Company of Heroes: Tales of Valor
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DHTML Editing Component (Version: 6.02.0001)
Download Updater (AOL LLC)
Dual-Core Optimizer (Version: 1.1.4.0169)
eBay Worldwide (Version: 2.1.0901)
Epson Copy Utility 3.5 (Version: 3.5.0.0)
Epson Event Manager (Version: 2.30.01)
EPSON Perfection V600 Photo Scanner Driver Update
EPSON Scan
eReg (Version: 1.20.138.34)
eSobi v2 (Version: 2.0.4.000274)
Feedback Tool (Version: 1.2.0)
Flight Control HD
Götterdämmerung Map (Version: 1.0)
Google Chrome (Version: 20.0.1132.47)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.111)
iCloud (Version: 1.1.0.40)
Identity Card (Version: 1.00.3002)
ImagXpress (Version: 7.0.74.0)
Impulse (Version: 1.0)
Intel® Matrix Storage Manager
iSEEK AnswerWorks English Runtime (Version: 010.000.0101)
iTunes (Version: 10.6.3.25)
J2SE Runtime Environment 5.0 Update 17 (Version: 1.5.0.170)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
JMicron JMB36X Driver (Version: 1.00.0000)
Junk Mail filter update (Version: 15.4.3502.0922)
Logitech G35 (Version: 1.1.178)
Logitech GamePanel Software 3.06.109 (Version: 3.06.109)
Logitech SetPoint 6.15 (Version: 6.15.25)
LTCM Client (Version: 1.20.3792)
MAGIX Movie Edit Pro 16 9.0.1.60 (US) (Version: 9.0.1.60)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Speed burnR (Version: 6.0.1.2)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Master of Orion
Master of Orion II
Master of Orion III
McAfee Online Backup (Version: 1.16.4.0)
McAfee Security Scan Plus (Version: 2.0.181.2)
McAfee Total Protection (Version: 11.0.678)
McAfee Virtual Technician (Version: 6.0.0.0)
Medieval II: Total War
Medieval II: Total War Kingdoms
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Money Plus (Version: 17)
Microsoft Money Shared Libraries (Version: 17.0.0.724)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook Connector (Version: 14.0.5139.5001)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (Version: 14.0.5120.5000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Mozilla Firefox 9.0.1 (x86 en-US) (Version: 9.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyWinLocker (Version: 3.1.76.0)
Napoleon: Total War
Nero 9 Essentials
Nero ControlCenter (Version: 9.0.0.1)
Nero DiscSpeed (Version: 5.4.7.201)
Nero DiscSpeed Help (Version: 5.4.4.100)
Nero DriveSpeed (Version: 4.4.7.201)
Nero DriveSpeed Help (Version: 4.4.4.100)
Nero Express Help (Version: 9.4.9.100)
Nero InfoTool (Version: 6.4.7.201)
Nero InfoTool Help (Version: 6.4.4.100)
Nero Installer (Version: 4.4.8.1)
Nero Online Upgrade (Version: 1.3.0.0)
Nero StartSmart (Version: 9.4.11.209)
Nero StartSmart Help (Version: 9.4.11.208)
Nero StartSmart OEM (Version: 9.16.0.100)
NeroExpress (Version: 9.4.10.505)
neroxml (Version: 1.0.0)
NVIDIA 3D Vision Controller Driver (Version: 275.33)
NVIDIA 3D Vision Controller Driver 285.62 (Version: 285.62)
NVIDIA 3D Vision Driver 285.62 (Version: 285.62)
NVIDIA Control Panel 285.62 (Version: 285.62)
NVIDIA Graphics Driver 285.62 (Version: 285.62)
NVIDIA HD Audio Driver 1.2.24.0 (Version: 1.2.24.0)
NVIDIA Install Application (Version: 2.1002.46.235)
NVIDIA PhysX (Version: 9.11.0621)
NVIDIA PhysX System Software 9.11.0621 (Version: 9.11.0621)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.8562)
NVIDIA Update 1.5.20 (Version: 1.5.20)
NVIDIA Update Components (Version: 1.5.20)
Octoshape add-in for Adobe Flash Player
OpenAL
Portal 2
Portforward Static IP Address 1.0.45 (Version: 1.0.45)
PunkBuster Services (Version: 0.988)
Puzzle Pirates
Quicken 2011 (Version: 20.1.8.6)
QuickTime (Version: 7.72.80.56)
R.U.S.E
Realtek High Definition Audio Driver (Version: 6.0.1.5969)
RIFT (Version: 0.1.10)
RollerCoaster Tycoon 3: Platinum!
Rosetta Stone 2.1.5.3A (Version: 2.1.5.3)
Safari (Version: 5.34.57.2)
Sid Meier's Civilization IV
Sid Meier's Civilization V
Sid Meier's Railroads!
Sins of a Solar Empire
Sins of a Solar Empire - Diplomacy
Sins of a Solar Empire - Entrenchment
SpaceChem
Star Wars: The Old Republic (Version: 1.00)
StartNow Toolbar (Version: 2.5.0)
Station Launcher (Version: 1.01.9000)
Steam (Version: 1.0.0.0)
System Requirements Lab
System Requirements Lab (Version: 4.1.72.0)
System Requirements Lab CYRI (Version: 4.5.1.0)
THX TruStudio PC (Version: 1.0)
Train Simulator 2012
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Ventrilo Client for Windows x64 (Version: 3.0.5.0)
Virtual Audio Cable 4.10
Visual Site Designer (Version: 7.0.52)
VLC Player (Version: 1.14)
Welcome Center (Version: 1.00.3006)
Winamp (Version: 5.61 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Winamp Toolbar
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
World of Goo

========================= Memory info: ===================================

Percentage of memory in use: 22%
Total physical RAM: 12278.99 MB
Available physical RAM: 9503.06 MB
Total Pagefile: 24556.17 MB
Available Pagefile: 21579.1 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.68 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:1383.49 GB) (Free:1097.38 GB) NTFS
2 Drive d: (Partition_1) (Fixed) (Total:454.32 GB) (Free:380.03 GB) NTFS
3 Drive e: (Back up ) (Fixed) (Total:1862.89 GB) (Free:359.01 GB) NTFS
4 Drive f: (Recovery) (Fixed) (Total:11.44 GB) (Free:11.35 GB) NTFS

========================= Users: ========================================

User accounts for \\RICHARD-PC

Administrator Guest Richard
UpdatusUser


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users